Office 365 in a hybrid world

Slides from European SharePoint Conference 2013 in Copenhagen. In this session, we will focus on various hybrid scenarios, which possibilities you have on your way to the cloud and how you can manage your hybrid world. What common questions should be answered for hybrid solutions?

5.
What is Hybrid?• Split Workload between On-Premises and the cloud• Some users of Exchange, SharePoint or Lync are in the cloud where others stay on-prem.

6.
Reasons for Hybrid SolutionsHigh FlexibilityCloud on your termsFast Move to the cloud is not possiblebusiness or technical reasonsWorkloadsSplit workloads between servicesCompliance and security reasonsyou decide which data will move to the cloud

7.
Hybrid: 2 possible ScenariosMigration to the CloudHybrid helps in transitioningPermanent Hybrid ModelHybrid-solution stays in the enterprise(for a longer time, maybe „forever“)

8.
Hybrid to help migrationsFlexibility inMigration in your desired speed – low impact onusers and on your current infrastructure Deployment ofPiloting the whole companyOnline Services with some T Users est Transfer of Workloads, users or sites in the cloud for a pilot or a staged Migration On-Premises Deployment of Usern or Sites

9.
Permanent Hybrid ModelCustomers have the choice to have userson-prem or in the cloud Move of workloads users, sites to theManage Users and services on-prem and online, depending on your enterprise cloud for specificT secure existent investments on prem. o reasons. Hybrid as aEasy on- and offboarding of Exchange Mailboxes between on-prem permanent modeland Office 365.Migration of remote users for better performanceData Hosting in specific regions because of compliance or securityMigration to the Cloud on your terms On-Premises Deployment of users or sites

10.
Online and On-Premises FeaturesHybrid deployments keeps your flexibility for Support of Features,please check back on public availability of Office 365 vnext Not available Features** Not available Features** Not available Features** • Hierarchical address book • Central administration • Voice to PSTN* and segmenting of your Global Adress book • Full-trust Code • Enterprise Voice and PBX • Language support of Exchange VoiceMail • Customized OWA Templates, Logos and add-ins • old APIs **List is subject to change, depending on service updates

15.
Core identity scenarios with Office 365 Cloud identity with Cloud identity directory synchronization Federated identitySingle identity in the cloud Suitable Single identity Single federated identityfor small organizations with no suitable for medium and credentials suitableintegration to on-premises and large organizations without for medium and largedirectories federation* organizations

16.
Federation options ShibbolethWorks with AD Works with AD & Non-AD Works with AD & Non-ADSuitable for medium, large enterprises Suitable for medium, large enterprises Suitable for educational organizations jincluding educational organizations including educational organizations Recommended where customers may useRecommended option for Active Directory Recommended where customers may use existing non-ADFS Identity systems(AD) based customers existing non-ADFS Identity systems with AD or Non-AD Single sign-onSingle sign-on Single sign-on Secure token based authenticationSecure token based authentication Secure token based authentication Support for web clients and outlook onlySupport for web and rich clients Support for web and rich clients Microsoft supported for integration only,Microsoft supported Third-party supported no shibboleth deployment supportWorks for Office 365 Hybrid Scenarios Requires on-premises servers, licenses & Requires on-premises servers & support supportRequires on-premises servers, licenses & Works with AD and other directories on-support Verified through ‘works with Office 365’ premises program Works for Office 365 Hybrid Scenarios

17.
Exchange HybridOn-Premises Cloud Service Coexistence Single sign on ADFS Rich Coexistence + Microsoft will regularly deliver new features and capabilities to SharePoint Online

26.
Non-SharePoint Configuration TasksThese non-SharePoint things need tobe configured to support hybrid – Reverse Proxy and certificate authentication* – Identity Provider (ADFS or Shibboleth or Third Party for O365) – MSOL T ools – SSO with O365 – Dirsync * Only required if you are consuming on-prem data in o365. You don’t HAVE to do both directions – you can “only” consume o365 data on-prem, or only on- prem data in o365

28.
Reverse Proxy and Authentication*Manage RequestsWhen using hybrid features O365 sends requests from sites in the cloud to your on-premfarmReverse ProxyYou need to establish a reverse proxy for these calls to be channeled through to secure theprocess.AuthenticateThose requests can be authenticated at the reverse proxy before they are forwarded toSharePointPublic CertificateSharePoint supports using a certificate for authenticating to the reverse proxy server whensending a request

29.
SharePoint Configuration TasksThese things need to be configured inSharePoint to support hybrid– New SharePoint STS T oken Signing Certificate (replace with Public one Set-SPSecurityTokenServiceConfig with –ImportSigningCertificate )– Configure a trust between SharePoint on-prem and ACS– Try out Search or BCS!